Product Documentation

authentication tacacsPolicy

Sep 12, 2016

The following operations can be performed on "authentication tacacsPolicy":

add | rm | set | unset | show

add authentication tacacsPolicy

Adds a TACACS+ authentication policy. The policy defines the criteria under which the NetScaler appliance attempts to authenticate the user with the specified TACACS+ server.

Synopsys

add authentication tacacsPolicy <name> <rule> [<reqAction>]

Arguments

name

Name for the TACACS+ policy.

Must begin with a letter, number, or the underscore character (_), and must contain only letters, numbers, and the hyphen (-), period (.) pound (#), space ( ), at (@), equals (=), colon (:), and underscore characters. Cannot be changed after TACACS+ policy is created.

The following requirement applies only to the NetScaler CLI:

If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my authentication policy" or 'my authentication policy').

rule

Name of the NetScaler named rule, or a default syntax expression, that the policy uses to determine whether to attempt to authenticate the user with the TACACS+ server.

reqAction

Name of the TACACS+ action to perform if the policy matches.

rm authentication tacacsPolicy

Removes the specified TACACS+ policy.

Synopsys

rm authentication tacacsPolicy <name>

Arguments

name

Name of the TACACS+ policy to remove.

set authentication tacacsPolicy

Configures the specified TACACS+ policy.

Synopsys

set authentication tacacsPolicy <name> [-rule <expression>] [-reqAction <string>]

Arguments

name

Name of the TACACS+ policy.

rule

Name of the NetScaler named rule, or a default syntax expression, that the policy uses to determine whether to attempt to authenticate the user with the TACACS+ server.

reqAction

Name of the TACACS+ action to perform if the policy matches.

unset authentication tacacsPolicy

Use this command to remove authentication tacacsPolicy settings.Refer to the set authentication tacacsPolicy command for meanings of the arguments.

Synopsys

unset authentication tacacsPolicy <name> [-rule] [-reqAction]

show authentication tacacsPolicy

Displays the current settings for the specified TACACS+ policy. If no policy name is provided, displays a list of all TACACS+ policies currently configured on the NetScaler appliance.

Synopsys

show authentication tacacsPolicy [<name>]

Arguments

name

Name of the TACACS+ policy.

Outputs

rule

Name of the NetScaler named rule, or a default syntax expression, that the policy uses to determine whether to attempt to authenticate the user with the TACACS+ server.

reqAction

Name of the TACACS+ action to perform if the policy matches.

boundTo

The entity name to which policy is bound

activePolicy

priority

bindPolicyType

policyType

devno

count

stateflag